[cryptography] Duplicate primes in lots of RSA moduli

Peter Gutmann pgut001 at cs.auckland.ac.nz
Sat Feb 18 07:05:04 EST 2012

Morlock Elloi <morlockelloi at yahoo.com> writes:

>Properly designed rngs should refuse to supply bits that have less than
>specified (nominal) entropy. The requestor can go away or wait.

So you're going to sacrifice availability for some nebulous (to the user)
level of security.  What do you think the survivability of this "feature" will
be in the real world?


More information about the cryptography mailing list